JP7257744B2 - Communication device, control method, and program - Google Patents

Description

The present invention relates to communication setting technology in wireless communication.

In recent years, electronic devices such as digital cameras, printers, mobile phones, and smart phones are equipped with wireless communication functions, and there are increasing cases of executing services involving communication by connecting these electronic devices to a wireless network. In order to connect an electronic device to a wireless network, it is necessary to set communication parameters including at least one of, for example, an encryption method, an encryption key, an authentication method, an authentication key, and the like. Wi-Fi Device Provisioning Protocol (hereinafter referred to as "DPP") has been established as a technique for facilitating setting of these communication parameters. Patent Literature 1 describes a technique for setting communication parameters by DPP, which includes detecting a partner device for which communication parameters are to be set by means of indications such as QR (Quick Response) codes. In Patent Document 1, in DPP, a provision device (configurator) that provides communication parameters transmits information necessary for connecting to an access point using a public key to a reception device (enrollee) that receives communication parameters. stated to provide.

U.S. Patent Application Publication No. 2017/0295448

In a parameter setting method such as DPP that acquires a public key by reading a QR code (registered trademark) and executes authentication, the device that captures the QR code can identify the device that captures the image. The device on the receiving side cannot specify the device on the imaging side. For this reason, there is a problem that at least the device on the imaged side executes parameter setting with an unintended device.

SUMMARY OF THE INVENTION The present invention has been made in view of the above problems, and it is an object of the present invention to enable a communication apparatus to set communication parameters with an appropriate partner apparatus.

A communication device according to an aspect of the present invention transmits a DPP Authentication Request in Device Provisioning Protocol (DPP) for setting parameters necessary for establishing a communication connection from another device that has acquired information about the communication device. receiving means for receiving; receiving means for receiving a user input as to whether or not to execute setting of the parameter with the other device when the DPP Authentication Request is received by the receiving means; and execution means for executing the parameter setting by the other device and the DPP when the user input indicating execution of parameter setting with the other device is received.

According to the present invention, a communication device can set communication parameters with an appropriate partner device.

It is a figure which shows the structural example of a radio|wireless communications system. It is a figure which shows the hardware structural example of a communication apparatus. It is a figure which shows the functional structural example of a communication apparatus. FIG. 10 is a flowchart showing an example of the flow of processing executed by a communication device on the DPP responder side; FIG. FIG. 11 is a flow chart showing an example of the flow of processing executed by a DPP initiator-side communication device; FIG. FIG. 4 is a diagram showing an example of a user interface displayed by the communication device; FIG. 4 is a diagram showing an example of a user interface displayed by the communication device; FIG. 2 is a diagram illustrating a first example of the flow of processing executed in a wireless communication system; FIG. 5 is a diagram showing a second example of the flow of processing executed in the wireless communication system; FIG. 10 is a diagram illustrating a third example of the flow of processing executed in the wireless communication system;

BEST MODE FOR CARRYING OUT THE INVENTION Hereinafter, embodiments of the present invention will be described with reference to the drawings. In this embodiment, an example using a wireless LAN system conforming to the IEEE802.11 standard series will be described. However, the method is not limited to this, and the following technique can be applied to other wireless communication systems that do not comply with the IEEE802.11 standard series. IEEE is the Institute of Electrical and Electronics Engineers, Inc. is an abbreviation for

(Configuration of wireless communication system)
FIG. 1 shows the configuration of a radio communication system according to this embodiment. This wireless communication system includes, for example, an access point 101 , a smart phone 103 , a printer 104 and a wireless LAN network 102 . Note that although the example of FIG. 1 shows the access point 101, the smartphone 103, and the printer 104 as communication devices included in the wireless communication system, they are not limited to these. For example, these communication devices may be replaced by other forms of communication devices such as mobile phones, cameras, personal computers (PCs), video cameras, smart watches, personal digital assistants (PDAs), and the like. Also, although the number of communication devices included in the wireless communication system is three in the example of FIG. 1, two or four or more communication devices may be included in the wireless communication system.

In this embodiment, processing for joining the printer 104 to the network 102 formed by the access point 101 will be described. At this time, for example, the smartphone 103 can operate as a DPP configurator and provide information for connecting to the access point 101 to the printer 104 operating as a DPP enrollee. As mentioned above, DPP is an abbreviation for WiFi Device Provisioning Protocol. Also, the configurator is a provider that provides communication parameters, and the enrollee is a receiver that receives the provided communication parameters. The communication parameter is information used for connecting to a device forming a network such as an access point, and is, for example, SSID as a network identifier, encryption key, encryption method, and other information.

In this embodiment, an initiator that starts parameter setting by DPP captures an image such as a QR code indicated by a responder that executes parameter setting together with the initiator, acquires a public key, and uses the public key to obtain a parameter setting. Run the settings. The initiator and responder are determined regardless of their role in the communication parameter providing process. That is, the configurator can operate as either an initiator or a responder, and similarly the enrollee can operate as either an initiator or a responder. In the parameter setting process by DPP, as described above, the initiator identifies the partner device for transmission/reception of communication parameters and reads an image such as a QR code, while the responder determines which communication device reads the image. Unable to determine For this reason, the responder may execute parameter setting with an inappropriate partner device and DPP. On the other hand, in this embodiment, when the responder receives a predetermined signal (for example, DPP Authentication Request) that is transmitted to the responder after reading an image such as a QR code from the initiator, the user input can be accepted. Transition. For example, the responder displays device information about the initiator obtained from the request signal on the screen, and accepts user input as to whether the partner device for parameter setting is what the user intended. Then, the responder continues the subsequent parameter setting processing by the DPP in response to receiving a user input indicating acceptance of the initiator as a partner device for parameter setting. As a result, the communication device can exchange parameters with other devices confirmed by the user, thereby preventing communication parameters from being exchanged with inappropriate devices. be able to

In the following, a configuration of a communication device that executes such processing and an example of the flow of processing that is executed will be described in detail.

(Device configuration)
FIG. 2 shows a hardware configuration example of each communication device (access point 101, smartphone 103, and printer 104) according to this embodiment. The communication device, for example, includes a control unit 201 , a storage unit 202 , a radio unit 203 , a display unit 204 , an imaging unit 205 , an antenna control unit 206 , an antenna 207 and an input unit 208 .

The control unit 201 controls the entire communication apparatus by executing control programs stored in the storage unit 202 . The control unit 201 includes one or more processors such as a CPU (Central Processing Unit) and an MPU (Micro Processing Unit). In addition, the control unit 201 may include hardware such as ASIC (Application Specific Integrated Circuit) and DSP (Digital Signal Processor), and a gate array circuit such as FPGA (Field Programmable Gate Array). . The storage unit 202 stores various information such as control programs executed by the control unit 201, image data, and communication parameters. Various operations to be described later can be realized by the control unit 201 executing a control program stored in the storage unit 202 . The storage unit 202 includes a storage medium such as a ROM (read only memory), a RAM (random access memory), an HDD (hard disk drive), a flash memory, or a removable SD (secure digital) card. .

The wireless unit 203 executes various processes for performing wireless LAN communication conforming to the IEEE802.11 standard series. The radio unit 203 includes a circuit chip on which a radio communication circuit such as a radio frequency (RF) circuit or a baseband (BB) circuit is formed. The display unit 204 presents various types of information to the outside by using a function capable of outputting visually recognizable information such as an LCD (liquid crystal display) or an LED (light emitting diode) and outputting sound such as a speaker. That is, the display unit 204 has a function of outputting at least one of visual information and sound information. When displaying visual information, the display unit 204 has, for example, a VRAM (Video RAM) capable of holding image data corresponding to visual information to be displayed. Display control for continuously displaying data can be performed.

The image capturing unit 205 includes an image sensor, a lens, and the like, and captures photographs and moving images. The imaging unit 205 can capture an image of a bar code, two-dimensional code, QR code (registered trademark), or the like. Antenna control unit 206 controls antenna 207, which is any type of antenna having an operating band in the 2.4 GHz band and/or the 5 GHz band for wireless LAN communication. The input unit 208 is a reception device that receives various user inputs, and is used when the user operates the communication device. The input unit 208 stores the flag corresponding to the received user input in a memory such as the storage unit 202 .

Note that the configuration example in FIG. 2 is merely an example, and the communication device may have other hardware configurations, or may not have a part of the hardware. For example, if the communication device is a printer, the communication device may have a printing unit in addition to the configuration of FIG. Also, when the communication device is the access point 101 , the communication device does not have to have the display unit 204 and the imaging unit 205 . Also, two or more of the above blocks may be integrated into one. For example, when the communication device is the smartphone 103, a touch panel in which at least a part of each of the display unit 204 and the input unit 208 is integrated may be used. Also, one block may be divided into two or more blocks.

FIG. 3 shows a functional configuration example of a communication device. It should be noted that FIG. 3 mainly shows functions for executing processing described later, and the communication device may have functions other than those shown.

The communication device has, for example, a communication parameter control unit 301, an image reading control unit 302, an image generation control unit 303, and a service control unit 304 as its functional configuration. The communication device also has, for example, a packet receiver 305 , a packet transmitter 306 , a station function controller 307 , an access point function controller 308 , and a data storage 309 . Each of these functional blocks can be implemented by the control unit 201 executing a program stored in the storage unit 202 . For example, the control unit 201 realizes each function by controlling each hardware and calculating and processing information according to a control program. Some or all of the functions may be realized by dedicated hardware such as ASIC.

The communication parameter control unit 301 executes communication parameter sharing processing for sharing communication parameters between devices. In the communication parameter sharing process, the providing device provides the receiving device with communication parameters for performing wireless communication. Here, the communication parameters are wireless communication parameters necessary for wireless LAN communication, such as at least one of SSID (Service Set Identifier) as a network identifier, encryption method, encryption key, authentication method, and authentication key. include. Further, the communication parameters may include a connector defined by DPP, MAC address, PSK, passphrase, IP address for performing communication in the IP layer, information necessary for upper services, and the like. Note that MAC is an acronym for Medium Access Control, PSK is an acronym for Pre Shared Key, and IP is an acronym for Internet Protocol. In this embodiment, the communication parameter control unit 301 executes communication parameter sharing processing by DPP. However, the communication parameter control unit 301 may execute communication parameter sharing processing not by DPP but by WPS (Wi-Fi Protected Setup), Wi-Fi Direct, or the like.

The image reading control unit 302 analyzes an image such as a barcode, two-dimensional code, or QR code captured by the imaging unit 205 and acquires encoded information. The image reading control unit 302 acquires code information including a public key used when executing communication parameter sharing processing as an image captured by the imaging unit 205 . The code information may be a two-dimensional code such as a CP (Computer Purpose) code or QR code, or a one-dimensional code such as a bar code. The image reading control unit 302 analyzes the image of the acquired code information and acquires encoded information. In this embodiment, code information may include information used in communication parameter sharing processing. Here, the information used in the communication parameter sharing process includes, for example, information such as a public key and device identifier used in the authentication process. The public key is a type of encryption key used in public key cryptography, and is information used to enhance security during communication parameter sharing processing. Information such as a certificate or a password may be used instead of the public key. The image generation control unit 303 generates an image such as a barcode, two-dimensional code, QR code, etc., and executes control for displaying the generated image on the display unit 204 . The image generation control unit 303 generates code information including information such as a public key used when executing communication parameter sharing processing and an identifier of a communication device. In communication devices, pre-generated code information is pasted on the housing, the instruction manual of the product of the communication device, or the packaging (for example, box) of the product, so that the code information can be transmitted without being displayed on the screen. may be displayed. According to this, even a communication device that does not have the display unit 204 can execute the processing according to the present embodiment.

The service control unit 304 controls services in the application layer. The application layer here refers to a service providing layer in the fifth layer or higher layers in the OSI reference model. A service control unit 304 uses wireless communication by the wireless unit 203 to control print processing, image streaming processing, file transfer processing, and the like.

A packet receiving unit 305 and a packet transmitting unit 306 control transmission and reception of arbitrary packets including upper layer communication protocols. For example, the packet receiving unit 305 and the packet transmitting unit 306 control the radio unit 203 to transmit and receive packets conforming to the IEEE 802.11 standard series with a communication partner device.

Station function control section 307 provides an STA function that operates as a station (STA) in the infrastructure mode of the IEEE802.11 standard series. Station function control section 307 executes authentication/encryption processing and the like when operating as an STA. Also, the access point function control unit 308 provides an AP function that operates as an access point (AP) in the infrastructure mode of the IEEE802.11 standard series. Access point function control section 308 forms a wireless network, performs authentication/encryption processing for STAs, and manages STAs. A data storage unit 309 controls writing and reading of information such as software itself, communication parameters and bar codes to and from the storage unit 202 .

Note that the communication device may not have a part of the configuration shown in FIG. 3, and depending on the case, the entire configuration may be replaced by another configuration capable of performing the same function as the configuration shown in FIG. may be replaced. For example, if the communication device is the access point 101, the image reading control unit 302 and the like may not be provided. Further, when the code information generated in advance in the communication device is attached to the housing and the code information is displayed without screen display, the image generation control unit 303 may be omitted.

(Processing flow)
Next, an example of the flow of processing executed by the communication device described above will be described. In the following, first, the flow of processing executed by DPP responders and initiators will be described, and then an example of the flow of processing executed in a wireless communication system will be described.

<Operation of the communication device on the responder side>
FIG. 4 shows an example of the flow of processing executed by a communication device operating as a responder (hereinafter referred to as a responder device). The responder device first activates an application for executing communication parameter setting by DPP, for example, via user input (S401). After that, the responder device determines, for example, through a user's operation, whether to act as a communication parameter providing device (configurator) or as a receiving device (enrollee) (S402). Note that the responder device may operate in a preset role that does not depend on user operation, for example. For example, a responder device may act as a configurator whenever it is an access point. After that, the responder device displays an image of code information such as a QR code indicating information about the device itself, such as the public key of the device itself, via the display unit 204, for example (S403). Note that the responder device may display the code information in a format in which a printed image is pasted on the housing, for example, and in this case, no particular processing need be executed in S403. An image of code information is captured by a communication device on the initiator side (hereinafter referred to as an initiator device). The initiator device analyzes the imaged code information, acquires information about the responder device, and then transmits a DPP Authentication Request packet to the responder device. The responder device then receives this DPP Authentication Request packet (S404).

Then, the responder device confirms the role (configurator or enrollee) of its own device in the communication parameter providing process determined in S402 (S405). If the responder device is determined to operate as a configurator, the responder device displays a user interface (UI) for setting confirmation (S406). An example of this UI is shown in FIG. In one example, as shown in FIG. 6, the responder device presents the device name of the initiator device and can accept user input as to whether or not execution of communication parameter setting processing with this initiator device is permitted. state. In addition, in the "device name" area in FIG. 6, the MAC address of the initiator device, information that can identify the initiator device set as additional information in the DPP Authentication Request packet, and the like are displayed. The UI in FIG. 6 presents three options, "OK", "NO", and "Mutual", and the user selects one of these options. Here, "OK" is an option indicating that the communication parameter setting processing with the displayed initiator device is permitted, and "NG" indicates that the communication parameter setting processing with the displayed initiator device is permitted. This is an option that indicates not to allow. In addition, "mutual" executes mutual authentication processing by having the responder device image code information such as a QR code displayed by the initiator device, and executes communication parameter setting processing in a state in which the code information is mutually acquired. This is an option that indicates that Note that the responder device may be designated to execute either “OK” or “mutual” as an initial setting when permitting communication parameter setting processing with the initiator device. In this case, for example, in the UI of FIG. 6, if only "OK" is displayed and this "OK" is selected by user input, this user input is interpreted as "OK" or "mutual" based on initial settings be.

The responder device determines which of these options has been selected by the user when the user's operation is accepted (S407). If the responder device determines that "NO" is selected in S407, it sends an error response to the initiator device using a DPP Authentication Response packet (S417), and ends the process. If the responder device determines that "OK" is selected in S407, it displays a UI for allowing the user to input information about the initiator device, which is the partner device of the communication parameter setting process, and shifts to a state of accepting user input. (S408). FIG. 7 shows an example of the UI displayed in S408. The user inputs the information of the initiator device in the "input field" in FIG. The information input here can be, for example, the same information as the information that can be acquired in S411, which will be described later. For example, the responder device acquires a file related to the information of the initiator device in advance via the Internet or the like, and the information of the initiator device can be input by designating the file. Also, the information to be input may be different from the information that can be acquired in S411, which will be described later. For example, the responder device may accept manual input by the user, such as information that can identify the initiator device. When the responder device receives the user's input of the information on the counterpart device in S408, the process proceeds to S412 (NO in S409).

On the other hand, if the responder determines that "mutual" is selected in S407, the process proceeds to S410 without executing the process of S408 (YES in S409). At S410, the responder device transmits an error response in a DPP Authentication Response packet to prompt the initiator device to display code information such as a QR code. The initiator device displays code information in response to the error response in this DPP Authentication Response packet. The responder device waits for the initiator device to display the code information, and when the code information is displayed, images the code information (S411) and acquires the information of the initiator device. The information acquired here can be, for example, information such as the public key of the initiator device. After acquiring the information of the initiator device, the responder device subsequently transmits a normal response in a DPP Authentication Response packet (S412). After that, the responder device executes parameter exchange based on the DPP specifications, and executes connection processing with the initiator device (S413 to S416).

<Operation of the communication device on the initiator side>
Next, an example of the flow of processing executed by the initiator device will be described with reference to FIG. The initiator device first activates an application for executing communication parameter setting by DPP, for example, via user input (S501). After that, the initiator device determines, for example, through a user's operation, whether to act as a communication parameter providing device (configurator) or as a receiving device (enrollee) (S502). Then, the initiator device captures code information such as a QR code including the public key displayed on the responder device (S503), and acquires information about the responder device. Upon acquiring this information, the initiator device transmits a DPP Authentication Request packet to the responder device (S508).

Note that the initiator device can execute processing similar to S405 to S408 before transmitting the DPP Authentication Request packet to the responder device. However, for example, when it is considered that the initiator device can correctly select the partner device to execute the communication parameter setting process and start reading the code information, and can certainly identify the responder device, these processes are It does not have to be executed.

When the initiator device operates as a configurator, the initiator device displays the information of the partner device acquired by the code information (S505), and the user inputs whether or not to permit the communication parameter setting process with the partner device. can accept Then, for example, when the code information of an unintended partner device is read, "NO" is selected in S506, thereby ending the communication parameter setting process without transmitting the DPP Authentication Request packet. sell. Further, when "OK" is selected in S506, the initiator device may display, for example, the UI of FIG. 7 to prompt the input of information on the partner device (S507). In one example, the initiator device can accept input of information such as the name of the partner device. After that, the initiator device transmits a DPP Authentication Request packet. The initiator device then receives a normal response in the DPP Authentication Response packet from the responder device (S511).

Also, when "mutual" is selected in S506, the initiator device transmits a DPP Authentication Request packet without executing the processing of S507. After that, the initiator device displays code information such as a QR code on the display unit 204 in response to receiving an error response in the DPP Authentication Response packet from the counterpart device, for example (S510). Further, when "mutual" is selected, the initiator device may display the code information when a predetermined time has passed after transmission of the DPP Authentication Request packet. The initiator device then receives a normal response in the DPP Authentication Response packet sent by the responder device after acquiring this code information (S511).

After that, the initiator device executes parameter exchange based on the DPP specifications, and executes connection processing with the responder device (S512 to S515).

As described above, according to the present embodiment, in setting communication parameters using code information such as a QR code, the user of the responder device can identify the initiator device (the initiator device can confirm the responder device if necessary). do. After permission by the user, communication parameters can be provided and received between these communication devices.

<Flow of processing in the entire wireless communication system>
Next, an example of the flow of processing executed in a wireless communication system including the initiator device and responder device as described above will be described. As described above, in the wireless communication system according to this embodiment, the access point 101 constructs the network 102 and holds communication parameters that allow the smartphone 103 to connect to the access point 101 . For example, when the access point 101 does not support DPP, the smartphone 103 can acquire communication parameters using existing protocols such as WPS and AOSS (AirStation One-Touch Secure System). Further, when the access point 101 supports DPP, the smartphone 103 may use automatic setting using DPP. In this embodiment, a case where the access point 101 provides communication parameters to the smartphone 103 with respect to the wireless communication system of FIG. 1 will be described, but a configuration other than such a configuration may be used. For example, a Wi-Fi Direct (registered trademark) group owner operates in the same manner as the access point 101 according to the present embodiment, provides communication parameters to a client, and the client provides communication parameters to another client. can be Alternatively, the user of the smart phone 103 may manually input communication parameters via the input unit 208 . Thereafter, the smartphone 103, as a DPP configurator, executes communication parameter setting processing with the enrollee (printer 104). At this time, the flow of processing when the smartphone 103 (configurator) is the initiator and does not perform mutual authentication, when the smartphone 103 (configurator) is the responder and does not perform mutual authentication, and when it is the responder and performs mutual authentication will be described below. do.

FIG. 8 shows an example of the flow of processing when the configurator is the initiator and does not perform mutual authentication. In this process, first, the responder device displays the QR code, and the initiator device images the QR code displayed on the responder device. Triggered by the image of this QR code, the initiator device transmits a DPP Authentication Request packet to the responder device. Upon receiving the DPP Authentication Request packet, the responder device displays a UI screen as shown in FIG. 6 as necessary. In addition, when the responder device is an enrollee, there are cases where it is sufficient to select whether or not to use the received parameters later, and so on. be. In such a case, the responder device may not display the UI screen. In addition, by displaying a UI screen on the responder device and permitting communication parameter setting processing only with a specific initiator device, execution of unnecessary communication parameter setting processing can be suppressed. can be done. When the UI screen is displayed, the responder device transmits a DPP Authentication Response packet to the initiator device in response to the user pressing "OK" on the UI screen. After that, parameter exchange is performed based on the DPP specification, and connection processing is performed between the responder device and the initiator device.

FIG. 9 shows an example of the flow of processing when the enrollee is the initiator and does not perform mutual authentication. Also in this process, first, the responder device displays a QR code, and the initiator device images the QR code displayed on the responder device. Triggered by the image of this QR code, the initiator device transmits a DPP Authentication Request packet to the responder device. When the responder device receives this DPP Authentication Request packet, it displays a UI screen as shown in FIG. The "device name" in FIG. 6 displays the MAC address of the initiator device and information for specifying the initiator device set as additional information in the DPP Authentication Request packet. When the responder device is a communication parameter providing device (configurator), providing communication parameters without specifying an initiator device may allow an unintended communication device to participate in the network. Therefore, in this processing example, the responder device functioning as the configurator provides the user with information specifying the initiator device that is the candidate of the enrollee, and determines whether or not the communication parameter setting process can be executed with the initiator device. Accept user operations. Accordingly, it is possible to execute the communication parameter setting process only with the partner device for which the user has determined that the communication parameter setting process can be executed. When the user presses "OK" on the UI screen, the responder device displays a UI screen such as that shown in FIG. 7 and accepts user input of information regarding the counterpart device for executing communication parameter setting processing. After receiving the user input, the responder device transmits a DPP Authentication Response packet to the initiator device. After that, parameter exchange is performed based on the DPP specification, and connection processing is performed between the responder device and the initiator device.

FIG. 10 shows an example of the flow of processing when mutual authentication is performed. Note that the processing example in FIG. 10 shows a processing example when the enrollee is the initiator, but similar processing can be executed even if the configurator is the initiator. Also in this process, first, the responder device displays a QR code, and the initiator device images the QR code displayed on the responder device. Triggered by the image of this QR code, the initiator device transmits a DPP Authentication Request packet to the responder device. When the responder device receives this DPP Authentication Request packet, it displays a UI screen as shown in FIG. Then, when the user presses "mutual", the responder device transmits an error response in a DPP Authentication Response packet to the initiator device, and waits for the initiator device to display the QR code. After that, the initiator device displays the QR code, and the responder device captures the QR code displayed on the responder device. When the responder device acquires the information of the initiator device, the responder device transmits a normal response in a DPP Authentication Response packet to the initiator device. After that, based on the DPP specification, parameter exchange is performed, and connection processing is performed between the responder device and the initiator device.

As described above, the DPP responder device allows the user to confirm the information of the initiator device, and based on the confirmation result, allows the user to perform the communication parameter setting process with the initiator device. Display the UI screen that can be accepted. In one example, the responder device displays this UI screen based on receiving the DPP Authentication Request packet. Then, the responder device continues the communication parameter setting process by the DPP based on the reception of the user's operation indicating that the communication parameter setting process with the initiator device is permitted. On the other hand, when the responder device receives a user operation indicating that the communication parameter setting process with the initiator device is not permitted, the process ends without continuing the communication parameter setting process by DPP. This can prevent communication parameters from being exchanged between communication devices unintended by the user.

Note that the display of the UI screen does not necessarily have to be used. For example, the information of the initiator device may be presented by voice or the like, and the selection of OK, NO, or the like described above may be accepted by keys, physical buttons, or the like provided on the responder device. In other words, any information presenting method and operation accepting method that allows the user to check the partner device and determine whether the communication parameter setting process can be executed can be used.

Further, in the above-described embodiment, an example in which information for executing communication parameter setting processing is transmitted and received between communication devices using a QR code (registered trademark) image has been described, but the present invention is not limited to this. . For example, instead of imaging a QR code (registered trademark), wireless communication such as Near Field Communication (NFC) or Bluetooth (registered trademark) may be used. Alternatively, wireless communication such as IEEE802.11ad or TransferJet (registered trademark) may be used. Information that can be read by a user may be used instead of code information such as a QR code. For example, a predetermined character string may be displayed, and the user may input the character string after starting the application to obtain information similar to the information obtained by imaging the QR code described above.

Further, in the above-described embodiment, a case has been described in which communication between communication devices is performed by a wireless LAN conforming to the IEEE802.11 standard series, but the present invention is not limited to this. For example, wireless communication media such as wireless USB, wireless 1394, UWB (Ultra Wide Band) such as WINET, Bluetooth (registered trademark), ZigBee, and NFC may be used.

<<other embodiments>>
The present invention supplies a program that implements one or more functions of the above-described embodiments to a system or apparatus via a network or a storage medium, and one or more processors in the computer of the system or apparatus reads and executes the program. It can also be realized by processing to It can also be implemented by a circuit (for example, ASIC) that implements one or more functions.

201: control unit, 202: storage unit, 203: wireless unit, 204: display unit, 205: imaging unit

Claims (24)

A communication device,
Receiving means for receiving a DPP Authentication Request in Device Provisioning Protocol (DPP) for setting parameters necessary for establishing a communication connection from another device that has acquired information about the communication device ;
receiving means for receiving a user input as to whether or not to execute setting of the parameter with the other device when the DPP Authentication Request is received by the receiving means;
execution means for executing the setting of the parameters by the other device and the DPP when the user input indicating execution of parameter setting with the other device is received;
A communication device comprising: A communication device,
obtaining means for obtaining information about other devices;
When the information about the other device is acquired, at least part of the acquired information about the other device is displayed, and communication connection is established with the other device by Device Provisioning Protocol (DPP). receiving means for receiving user input as to whether or not to execute setting of parameters necessary for
transmission means for transmitting a DPP Authentication Request to the other device when the user input indicating execution of setting the parameter with the other device is received;
execution means for executing setting of the parameter with the other device when the authentication based on the DPP Authentication Request is successful ;
A communication device comprising: the accepting means presents information about the other device and accepts the user input;
3. The communication device according to claim 1 or 2, characterized by: The receiving means controls whether or not to present information about the other device based on the role of the communication device in setting the parameters .
4. The communication device according to claim 3, characterized by: The receiving means presents information about the other device when the communication device operates in a role of providing parameters.
5. The communication device according to claim 4, characterized by: When the communication device operates in a role of providing parameters, and when the user input indicating execution of setting of the parameters with the other device is received, prompting a user to enter information about the other device;
6. The communication device according to any one of claims 1 to 5, characterized in that: The accepting means accepts, as the user input, a selection as to whether or not to perform mutual authentication with the other device when the communication device operates in a role of providing parameters.
The communication device according to any one of claims 1 to 6, characterized in that: The mutual authentication includes obtaining information of the communication device by the other device and obtaining information of the communication device by the other device,
8. The communication device according to claim 7, characterized by: The DPP Authentication Request is transmitted from the other device based on the acquisition of information about the communication device by the other device.
The communication device according to claim 1, characterized by: further comprising display means for displaying an image showing information about the communication device;
the other device acquires information about the communication device by capturing an image displayed by the display means;
The communication device according to claim 1, characterized by: the other device acquires information about the communication device by capturing an image showing information about the communication device;
The communication device according to claim 1, characterized by: the other device acquires information about the communication device by wireless communication;
The communication device according to claim 1, characterized by: The execution means transmits a DPP Authentication Response when the user input indicating execution of parameter setting with the other device is received, and the parameter setting is performed by the other device and the DPP. 2. The communication device according to claim 1, wherein: The receiving means displays an object for permitting execution of the parameter setting with the other device and an object for not permitting execution of the parameter setting, and the user input 14. A communication device according to any one of claims 1 to 13, characterized in that it receives a A communication device,
Receiving means for receiving , from another device that has acquired the public key, a request regarding authentication processing that is performed using a public key relating to the communication device in processing for setting parameters necessary for establishing a communication connection;
receiving means for receiving a user input as to whether or not to execute setting of the parameter with the other device when the request is received by the receiving means;
execution means for executing the parameter setting with the other device when the user input indicating execution of the parameter setting with the other device is received;
A communication device comprising: A communication device,
obtaining means for obtaining public keys relating to other devices;
When the public key related to the other device is acquired, the information related to the other device is displayed, and whether or not to set parameters necessary for establishing communication connection with the other device is determined. receiving means for receiving user input;
transmitting means for transmitting a request for authentication processing performed using the public key to the other device when the user input indicating that the parameter setting is to be executed with the other device is accepted; ,
receiving means for receiving a response regarding the authentication process from the other device;
execution means for executing setting of the parameter with the other device after the response is received;
A communication device comprising: The other device obtains the public key related to the communication device by capturing an image showing the public key related to the communication device.
16. The communication device according to claim 15 , characterized by: the other device obtains a public key related to the communication device by wireless communication;
16. The communication device according to claim 15 , characterized by: The executing means transmits a response regarding the authentication process when the user input indicating execution of the setting of the parameters with the other device is accepted, and performs the setting of the parameters with the other device. 16. A communication device according to claim 15, characterized in that it performs configuration. A control method performed by a communication device, comprising:
a receiving step of receiving a DPP Authentication Request in Device Provisioning Protocol (DPP) for setting parameters necessary for establishing a communication connection from another device that has acquired information about the communication device ;
a receiving step of receiving a user input as to whether or not to execute setting of the parameter with the other device when the DPP Authentication Request is received;
an executing step of executing the parameter setting by the other device and the DPP when the user input indicating executing the parameter setting with the other device is received;
A control method characterized by having A control method performed by a communication device, comprising:
an obtaining step of obtaining information about the other device;
When the information about the other device is acquired, at least part of the acquired information about the other device is displayed, and communication connection is established with the other device by Device Provisioning Protocol (DPP). a receiving step for receiving user input as to whether or not to execute setting of parameters necessary for
a transmission step of transmitting a DPP Authentication Request to the other device when the user input indicating that the parameter setting is to be performed with the other device is received;
an executing step of executing setting of the parameter with the other device when the authentication based on the DPP Authentication Request is successful ;
A control method characterized by having A control method performed by a communication device, comprising:
a receiving step of receiving , from another device that has acquired the public key, a request relating to authentication processing that is performed using the public key of the communication device in the processing of setting parameters necessary for establishing a communication connection ;
a receiving step of receiving a user input as to whether or not to execute setting of the parameter with the other device when the request is received ;
an executing step of executing the parameter setting with the other device when the user input indicating executing the parameter setting with the other device is received;
A control method characterized by having A control method performed by a communication device, comprising:
obtaining a public key for another device;
When the public key related to the other device is acquired, the information related to the other device is displayed, and whether or not to set parameters necessary for establishing communication connection with the other device is determined. a receiving step for receiving user input;
a sending step of sending a request for an authentication process performed using the public key to the other device when the user input indicating execution of setting the parameter with the other device is accepted; ,
a receiving step of receiving a response regarding the authentication process from the other device;
performing the setting of the parameter with the other device after the response is received;
A control method characterized by having A program for causing a computer to function as each means of the communication device according to any one of claims 1 to 19 .

Images